Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/BbkC5YCsMB29ishmpQyKlbLgtM0.roa
File: BbkC5YCsMB29ishmpQyKlbLgtM0.roa (raw, json)
Hash identifier: Uu+HDSo30tKfANiAabtrdw263+34yRDZxE95vwdN+Ww=
Subject key identifier: 05:B9:02:E5:80:AC:30:1D:BD:8A:C8:66:A5:0C:8A:95:B2:E0:B4:CD
Certificate issuer: /CN=38ead5deb53500f2548ae1812c087e32a47fc8b4
Certificate serial: 01D266
Authority key identifier: 38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/BbkC5YCsMB29ishmpQyKlbLgtM0.roa
Signing time: Thu 23 Jun 2022 10:13:24 +0000
ROA not before: Thu 23 Jun 2022 10:13:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9085
IP address blocks: 193.42.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119398 (0x1d266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ead5deb53500f2548ae1812c087e32a47fc8b4
Validity
Not Before: Jun 23 10:13:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05b902e580ac301dbd8ac866a50c8a95b2e0b4cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2c:2d:69:3d:af:d5:23:81:d3:8e:3b:0b:c9:
da:3c:93:63:c4:89:5f:8a:de:56:4a:9a:d2:11:1e:
f7:3a:28:de:e6:f4:dc:54:07:71:5b:87:e4:6d:74:
d1:ed:cc:a8:36:eb:ef:61:d2:1c:a3:d4:e7:27:16:
75:ab:93:27:c9:c0:25:a9:7a:27:93:51:d2:4f:f6:
0e:f7:ee:b2:14:88:9e:86:a3:34:25:0b:eb:18:f0:
81:4a:48:01:6f:1f:81:3e:96:89:6d:49:16:90:cf:
31:09:4a:f8:dc:c9:68:06:05:c7:4e:5c:db:10:45:
0b:a6:72:69:65:08:45:2c:a8:f5:fa:fd:26:d4:ed:
75:da:a2:49:87:26:f7:29:00:b2:6e:bd:7e:e3:ef:
c9:b6:5a:b0:2a:fb:26:9f:2c:c0:f1:5c:b2:1d:66:
78:10:aa:30:d1:b5:bc:e2:36:d3:14:63:7d:03:9c:
3f:10:fa:38:89:fe:c6:e9:98:4e:97:30:86:63:17:
3b:77:3c:e0:e0:fb:bf:59:10:a9:b8:a9:de:b3:f0:
33:d8:6e:aa:68:10:b3:f3:62:07:ec:cd:c6:6f:96:
2e:35:72:7e:02:ea:9a:df:3a:8a:97:2e:26:df:38:
d0:43:f7:f4:06:20:55:c1:dd:c6:53:e9:d1:47:d3:
a8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B9:02:E5:80:AC:30:1D:BD:8A:C8:66:A5:0C:8A:95:B2:E0:B4:CD
X509v3 Authority Key Identifier:
keyid:38:EA:D5:DE:B5:35:00:F2:54:8A:E1:81:2C:08:7E:32:A4:7F:C8:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OOrV3rU1APJUiuGBLAh-MqR_yLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/BbkC5YCsMB29ishmpQyKlbLgtM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/3516a1-fd9d-4e29-add3-d446f1f83ae9/1/OOrV3rU1APJUiuGBLAh-MqR_yLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.211.0/24
Signature Algorithm: sha256WithRSAEncryption
85:b2:3f:1a:2b:2a:87:e5:90:63:22:d9:1a:d8:e9:68:28:6f:
c9:db:01:b6:28:b5:70:e0:ef:53:48:41:3a:81:8f:0f:3d:75:
c9:3a:b8:b5:4f:00:86:fd:f7:3f:01:40:02:59:57:a8:10:b3:
20:63:1c:29:26:5a:9e:45:f2:5b:d4:93:ba:81:c3:14:c2:4a:
5a:49:d9:48:5c:ec:34:58:5d:8c:54:51:12:00:ce:f5:bc:a2:
35:85:54:5b:01:71:65:e8:82:4e:a2:20:b4:71:47:54:c6:5c:
5c:8e:ca:9e:73:69:bd:e2:e8:85:18:94:30:18:7b:af:93:6a:
29:b3:01:c3:fa:1c:09:ff:3c:27:c5:fe:78:63:9b:36:08:5c:
16:20:31:7d:06:66:5d:b2:86:26:32:62:74:9a:33:0e:f6:f0:
4c:c4:58:5a:61:43:ae:1a:2b:a6:e7:5b:ca:a5:49:e2:70:b5:
7e:80:23:09:83:9f:ef:d2:14:a6:22:97:9d:a8:f3:90:63:fd:
16:29:78:bf:7f:fc:c3:55:e5:15:a2:04:45:c0:4f:30:17:fd:
bf:61:5d:dc:c1:8c:23:f1:f5:e5:dd:e7:a8:42:0c:b2:d6:f1:
aa:4b:08:34:27:75:58:24:f0:23:fe:28:34:19:89:50:ec:ed:
c4:72:98:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:55 2024 by rpki-client on console-ams.rpki-client.org